CVE-2012-0644Race Condition in Apple Iphone OS

CWE-362Race Condition5 documents4 sources
Severity
6.9MEDIUMNVD
EPSS
0.1%
top 83.47%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Apple Iphone OSPuppet
Timeline
PublishedMar 8
Latest updateMay 14

Description

Race condition in the Passcode Lock feature in Apple iOS before 5.1 allows physically proximate attackers to bypass intended passcode requirements via a slide-to-dial gesture.

CVSS vector

AV:L/AC:M/C:C/I:C/A:CExploitability: 3.4 | Impact: 10.0

Affected Packages2 packages

NVDapple/iphone_os< 5.1
RubyGemspuppet/puppet2.7.02.7.18

🔴Vulnerability Details

2
GHSA
GHSA-h6fq-pxcw-673j: Race condition in the Passcode Lock feature in Apple iOS before 52022-05-14
GHSA
Puppet allows local users to obtain sensitive configuration information2017-10-24

💬Community

2
Bugzilla
CVE-2012-2679 rhncfg: Insecure permissions used for /var/log/rhncfg-actions file2012-05-25
Bugzilla
CVE-2012-2389 hostapd: insecure default permissions on /etc/hostapd/hostapd.conf2012-05-23
CVE-2012-0644 — Race Condition in Apple Iphone OS | cvebase